877e1836ef0722467e1f0e60c2b17875_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

877e1836ef0722467e1f0e60c2b17875_JaffaCakes118
Size

354KB
MD5

877e1836ef0722467e1f0e60c2b17875
SHA1

a5069cb0f3431eb3c32806e5322090725f65f600
SHA256

731fb67573991adb1b9c76cd6ff7104dd9a57fa057fae6b3d0cd5cb04021edf3
SHA512

caf48313b6e9f1e85cff67d91416e09f9c08e0596a0c756985a475badf9dbb682a3c8db8c7b6d5548c9fbe0c98dcbd7b2b5ef2e331795119f47baa5b9a801070
SSDEEP

6144:bgOviFZ3FvaZGCbuFaplyBWa2cf07oPxl9XzLDGO71iKFGOso/Qhm5Vsr8:b/iFdFv0GCbu9Wa2cf0cxLXjH4KF+lhm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
877e1836ef0722467e1f0e60c2b17875_JaffaCakes118

Files

877e1836ef0722467e1f0e60c2b17875_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e50f93c11b3318a0bd4b9278a77354e0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalHandle
GlobalLock
TerminateProcess
Sleep
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
HeapSize
GetCPInfo
GetOEMCP
GetACP
MultiByteToWideChar
SetHandleCount
GetEnvironmentStringsW
GetLastError
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
WriteFile
ExitProcess
VirtualQuery
InterlockedExchange
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
GetModuleHandleA
RtlUnwind
HeapFree
HeapAlloc
WideCharToMultiByte
GlobalUnlock
FreeLibrary
GetModuleFileNameA
GetSystemDefaultLangID
lstrlenA
GetVersionExA
GetSystemInfo
FormatMessageA
LockResource
LoadResource
FindResourceExA
WinExec
LocalFree
GetProcAddress
LoadLibraryA
lstrcpyA
lstrlenW
lstrcmpA
GlobalAlloc
GlobalFree
GetCommandLineA
GetFileType
VirtualProtect

user32

DrawTextA
EndPaint
SetScrollInfo
EnableScrollBar
InvalidateRect
DrawTextW
ScreenToClient
GetCursorPos
BeginPaint
ReleaseCapture
PtInRect
IsWindow
GetDlgCtrlID
RegisterClassExA
LoadCursorA
GetClassInfoExA
SendMessageA
SetWindowLongW
GetWindowLongW
ShowWindow
CreateWindowExA
CreateWindowExW
DestroyWindow
SetWindowPos
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SendMessageW
IsWindowUnicode
GetDlgItem
DrawFocusRect
GetSystemMetrics
GetSysColor
FillRect
DefWindowProcA
SetTimer
KillTimer
GetWindowRect
UpdateWindow
GetClientRect
GetParent
GetWindowLongA
SetWindowLongA
ReleaseDC
GetDC
wsprintfA
MessageBoxA
DefDlgProcA
DefMDIChildProcA
DefFrameProcA
WinHelpA
CallWindowProcW
wsprintfW
ClientToScreen
DrawEdge

gdi32

GetObjectA
BitBlt
CreateSolidBrush
CreateCompatibleBitmap
SetBkMode
CreateCompatibleDC
DeleteDC
EnumFontFamiliesA
DeleteObject
GetTextExtentPointA
GetTextExtentPoint32W
GetTextMetricsA
ExtTextOutW
ExtTextOutA
EnumFontFamiliesExA
GetDeviceCaps
CreateFontIndirectA
SetTextColor
SetBkColor
SelectObject
GetTextExtentPoint32A
GetStockObject

ole32

CoInitialize
CoUninitialize

Sections

.text
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 288KB - Virtual size: 571KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e50f93c11b3318a0bd4b9278a77354e0

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

Sections

.text Size: 56KB - Virtual size: 56KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 288KB - Virtual size: 571KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 56KB - Virtual size: 56KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 288KB - Virtual size: 571KB

.rsrc
Size: 1KB - Virtual size: 1KB